jainendra_singh
asked on
Buidling MOD_SSL with FIPS enabled
Is there a way to build the mod_ssl with FIPS enabled? If yes, what version of mod_ssl is fips complaint. It should be supporting only TLS
ASKER
As pet the https://issues.apache.org/bugzilla/show_bug.cgi?id=46270, I am not sure where exactly do we set SSLFIPS option in mod-ssl? . Also it states that it prohibit keys generated open-ssl less then 1024 bits. what if the administrator already generated the keys using 1024 bits, does it make the private key fips complaint.
1) you need to patch the tree with the patch provided, then compile it yourself. at that point, you can add the flag "SSLFIPS" to the httpd.conf
2) yes, because a 1024 bit key is not less than 1024 bits. however, the key must *also* only use a FIPS approved algo for hashing.
2) yes, because a 1024 bit key is not less than 1024 bits. however, the key must *also* only use a FIPS approved algo for hashing.
ASKER
Hi,
Is there a FIPS complaint version of mod_ssl available? This patch doesnt guarantee the FIPS complaince, also it is just looking at server.key... what abt the CA certificates, we should allow CA cert to be loaded by mod_ssl which is generated using Non FIPS algorithm.
Please suggest.
Is there a FIPS complaint version of mod_ssl available? This patch doesnt guarantee the FIPS complaince, also it is just looking at server.key... what abt the CA certificates, we should allow CA cert to be loaded by mod_ssl which is generated using Non FIPS algorithm.
Please suggest.
1) no, there isn't a pre-compiled FIPS mode mod_ssl - it has been proposed as a patch, but it isn't mainstream so the standard branch doesn't have it.
2) no, the patch alone doesn't guarantee FIPS compliance - it must be compiled against (and linked to) a copy of openssl compiled for FIPS (not sure but I think you can get precompiled libraries there) and enabled in the config.
3) CAs are external to the issue - they are just there to certify *your* certificate, they have no part to play in the encryption (FIPS or otherwise). As long as *your* certificate is FIPS compliant, so is the transaction. It would still be FIPS even if self-signed....
2) no, the patch alone doesn't guarantee FIPS compliance - it must be compiled against (and linked to) a copy of openssl compiled for FIPS (not sure but I think you can get precompiled libraries there) and enabled in the config.
3) CAs are external to the issue - they are just there to certify *your* certificate, they have no part to play in the encryption (FIPS or otherwise). As long as *your* certificate is FIPS compliant, so is the transaction. It would still be FIPS even if self-signed....
ASKER
Thanks for your comments, regarding # 2 and #3.
#2 We are using OpenSSL version 0.9.8e and generating RSA key using 1024 bits, does it makes FIPS complaint. Is there still need to patch/code in mod-ssl to ensure the key when we have enforced 1024 key bit usage.
#3 I am not sure how a webserver internally handles the CA certs, now I need to ensure that CA certs passed to webserver are FIPS complaint. Also here how do make sure the communication that is happening is using TLS or SSL v3.1 protocol.
2) no. only openssl built *with the FIPS MODE BUILD FLAGS TURNED ON* is a FIPS certified module. you can use the FIPS modes and will have FIPS encryption, but you won't have a FIPS certified system unless you are using a specially built FIPS openssl and are running it in FIPS mode.
Conversely though, you can use the usual "uses a FIPS certified cryptographic module" without patching Apache, provided it *is* using the FIPS version of openssl.
3) CA Certs aren't part of FIPS - they don't take part in the encryption, they are used by the recipient browser to verify the certificate you send. You can safely ignore them during a FIPS security review of your solution. AFAIK, there is no requirement in FIPS (which is protocol neutral) to support any particular versions of SSL/TLS, just to *not* support any hashes or encryption algos that aren't in the approved list.
Conversely though, you can use the usual "uses a FIPS certified cryptographic module" without patching Apache, provided it *is* using the FIPS version of openssl.
3) CA Certs aren't part of FIPS - they don't take part in the encryption, they are used by the recipient browser to verify the certificate you send. You can safely ignore them during a FIPS security review of your solution. AFAIK, there is no requirement in FIPS (which is protocol neutral) to support any particular versions of SSL/TLS, just to *not* support any hashes or encryption algos that aren't in the approved list.
ASKER
Please provide a reference/document for the above statement that "CA Certs aren't part of FIPS"?
there aren't any. there is just an absence of statement that says a CA certificate *is* part of FIPS :)
ASKER
Hi,
I believe this should be documented that FIPS is idependent of SSL protocol. Can I get reference to that?
Secondly can you please confirm that openssl version 0.9.8j is first official release for FIPS complaince, also if there is any document which we can refer.
Thanks
I believe this should be documented that FIPS is idependent of SSL protocol. Can I get reference to that?
Secondly can you please confirm that openssl version 0.9.8j is first official release for FIPS complaince, also if there is any document which we can refer.
Thanks
ASKER
http://www.mozilla.org/projects/security/pki/nss/ssl/fips-ssl-ciphersuites.html
Here it mentions that TLS cipher suites should be used for FIPS SSL.
Here it mentions that TLS cipher suites should be used for FIPS SSL.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
to put it another way - there is no statement that apples have or have not a pie requirement.
similarly, there is no statement that pies have or have not a pie requirement.
however, to bake an apple pie, you need to make a pie that contains apples, and there are lots of consumer legislation statements that say how much apple must be in an apple pie for it to be an apple pie. that says nothing about apples as apples, or pies as pies - it is specific to apple pies.
similarly, there is no statement that pies have or have not a pie requirement.
however, to bake an apple pie, you need to make a pie that contains apples, and there are lots of consumer legislation statements that say how much apple must be in an apple pie for it to be an apple pie. that says nothing about apples as apples, or pies as pies - it is specific to apple pies.
bah. ok, for the second line, pretend I wrote
"similarly, there is no statement that pies have or have not an apple requirement."
and I will sit here wishing EE let you edit posts you didn't check before hitting submit :)
"similarly, there is no statement that pies have or have not an apple requirement."
and I will sit here wishing EE let you edit posts you didn't check before hitting submit :)
ASKER
A
https://issues.apache.org/bugzilla/show_bug.cgi?id=46270